Date: Wed, 14 May 2014 11:47:17 +0100 From: "Steven Hartland" <killing@multiplay.co.uk> To: "Mohacsi Janos" <mohacsi@niif.hu>, <freebsd-security@freebsd.org> Subject: Re: freebsd-update on Re: FreeBSD Security Advisory FreeBSD-SA-14:10.openssl Message-ID: <FA6EFF72A3F44E5AB46CA54431D616E6@multiplay.co.uk> References: <201405140000.s4E0023k029906@freefall.freebsd.org> <alpine.DEB.2.00.1405141238260.27781@strudel.ki.iif.hu>
next in thread | previous in thread | raw e-mail | index | archive | help
----- Original Message -----
From: "Mohacsi Janos" <mohacsi@niif.hu>
To: <freebsd-security@freebsd.org>
Sent: Wednesday, May 14, 2014 11:43 AM
Subject: freebsd-update on Re: FreeBSD Security Advisory FreeBSD-SA-14:10.openssl
> Dear All,
> The freebsd-update a bit suspicious:
> "
> root@skye:/usr/home/mohacsi # freebsd-update fetch
> Looking up update.FreeBSD.org mirrors... 5 mirrors found.
> Fetching metadata signature for 10.0-RELEASE from update3.freebsd.org...
> done.
> Fetching metadata index... done.
> Fetching 2 metadata patches.. done.
> Applying metadata patches... done.
> Inspecting system... done.
> Preparing to download files... done.
> Fetching 11 patches.....10 done.
> Applying patches... done.
>
> The following files will be updated as part of updating to
> 10.0-RELEASE-p3:
> /bin/freebsd-version
> /boot/kernel/ciss.ko
> /boot/kernel/ciss.ko.symbols
> /boot/kernel/kernel
> /boot/kernel/kernel.symbols
> /usr/lib/libssl.a
> /usr/lib/libssl.so.7
> /usr/lib/libssl_p.a
> /usr/lib32/libssl.a
> /usr/lib32/libssl.so.7
> /usr/lib32/libssl_p.a
> "
>
> It seems to me the ciss(4) also updated. Is it intentional? Is it
> harmless?
ciss(4) was included in a seperate errata notice this morning
which detailed how it could cause corruption, so I would expect
that updating it is indeed correct.
Regards
Steve
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?FA6EFF72A3F44E5AB46CA54431D616E6>